An authorization method and a network element are disclosed, to implement a third-party authorization function based on a 5G service-based network architecture. The method is: receiving, by a resource control network element, a resource usage request message sent by a terminal device; replacing a first user identifier in the resource usage request message with a second user identifier; sending an authorization request message carrying the second user identifier to an authorization server by using an NEF; receiving, by using the NEF, an authorization response message sent by the authorization server, where the authorization response message includes an authorization result that is obtained by performing authorization based on the second user identifier and the resource usage request message; and allocating a network resource to the terminal device based on the authorization result, and sending a resource allocation response message to the terminal device.
Legal claims defining the scope of protection, as filed with the USPTO.
6. The method according to claim 1, wherein the authorization request message further comprises an application identifier, and the authorization response message comprises the authorization result that is obtained by the authorization server by performing authorization based on the second user identifier, the application identifier, and the resource usage request message.
15. The network element according to claim 10, wherein the authorization request message further comprises an application identifier, and the authorization response message comprises the authorization result that is obtained by the authorization server by performing authorization based on the second user identifier, the application identifier, and the resource usage request message.
16. The network element according to claim 10, wherein the authorization request message further comprises a first message authentication code, and the first message authentication code is used by the authorization server to verify security of the authorization request message; and the authorization response message further comprises a second message authentication code, and the second message authentication code is used by the hardware processor to verify security of the authorization response message.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
March 10, 2020
August 30, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.